CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
99.8%
According to its version, the instance of Flash Player installed on the remote Mac OS X host is earlier than 10.3.181.26. This version of Flash Player has a critical vulnerability. By tricking a user on the affected system into opening a specially crafted document with Flash content, an attacker could leverage the vulnerability to execute arbitrary code remotely on the system subject to the userβs privileges.
This issue is reportedly being exploited in the wild in targeted attacks as of June 2011.
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(55141);
script_version("1.12");
script_cvs_date("Date: 2018/07/14 1:59:35");
script_cve_id("CVE-2011-2110");
script_bugtraq_id(48268);
script_name(english:"Flash Player for Mac < 10.3.181.26 Remote Memory Corruption (APSB11-18)");
script_summary(english:"Checks version of Flash Player from Info.plist");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Mac OS X host has a browser plugin that is affected by a
remote memory corruption vulnerability."
);
script_set_attribute(
attribute:"description",
value:
"According to its version, the instance of Flash Player installed on
the remote Mac OS X host is earlier than 10.3.181.26. This version of
Flash Player has a critical vulnerability. By tricking a user on the
affected system into opening a specially crafted document with Flash
content, an attacker could leverage the vulnerability to execute
arbitrary code remotely on the system subject to the user's
privileges.
This issue is reportedly being exploited in the wild in targeted
attacks as of June 2011."
);
script_set_attribute(
attribute:"see_also",
value:"http://www.adobe.com/support/security/bulletins/apsb11-18.html"
);
script_set_attribute(
attribute:"solution",
value:"Upgrade to Adobe Flash for Mac version 10.3.181.26 or later."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploit_framework_core", value:"true");
script_set_attribute(attribute:"exploited_by_malware", value:"true");
script_set_attribute(attribute:"metasploit_name", value:'Adobe Flash Player AVM Verification Logic Array Indexing Code Execution');
script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
script_set_attribute(attribute:"canvas_package", value:'CANVAS');
script_set_attribute(attribute:"vuln_publication_date", value:"2011/06/14");
script_set_attribute(attribute:"patch_publication_date", value:"2011/06/14");
script_set_attribute(attribute:"plugin_publication_date", value:"2011/06/15");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:flash_player");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"MacOS X Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.");
script_dependencies("macosx_flash_player_installed.nasl");
script_require_keys("MacOSX/Flash_Player/Version");
exit(0);
}
include("global_settings.inc");
include("misc_func.inc");
version = get_kb_item_or_exit("MacOSX/Flash_Player/Version");
fixed_version = "10.3.181.26";
if (ver_compare(ver:version, fix:fixed_version, strict:FALSE) == -1)
{
if (report_verbosity > 0)
{
report =
'\n Installed version : ' + version +
'\n Fixed version : '+fixed_version+'\n';
security_hole(port:0, extra:report);
}
else security_hole(0);
exit(0);
}
else exit(0, "Flash Player for Mac "+version+" is installed and thus not affected.");